Project

General

Profile

Actions

Bug #7077

closed

Pulp default admin password set to 'admin', should be random generated

Added by Walden Raines over 10 years ago. Updated over 6 years ago.

Status:
Closed
Priority:
High
Assignee:
Category:
Installer
Target version:
Difficulty:
Triaged:
Yes
Fixed in Releases:
Found in Releases:

Description

Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=1127242
Description of problem:
Having admin:admin as default pulp credentials should be considered a security issue and we shouldn't ship Sat 6 GA with this issue inside

Version-Release number of selected component (if applicable):
6.0.3

How reproducible:
Always

Steps to Reproduce:
1. install sat6
2. grep default_password /etc/pulp/server.conf

Actual results:
The default password set to admin

curl -k -u admin:admin https://localhost/pulp/api/v2/repositories/
lets me to go to the list of repositories

Expected results:
The default password set to random script

curl -k -u admin:admin https://localhost/pulp/api/v2/repositories/
returns 401 Unauthorized

Additional info:

Actions #1

Updated by The Foreman Bot over 10 years ago

  • Status changed from New to Ready For Testing
  • Target version set to 54
  • Pull request https://github.com/Katello/katello-installer/pull/101 added
  • Pull request deleted ()
Actions #2

Updated by Walden Raines over 10 years ago

  • Pull request https://github.com/Katello/puppet-pulp/pull/24 added
  • Pull request deleted (https://github.com/Katello/katello-installer/pull/101)
Actions #3

Updated by Eric Helms over 10 years ago

  • Triaged changed from No to Yes
Actions #4

Updated by Walden Raines over 10 years ago

  • Pull request https://github.com/Katello/katello-installer/pull/103 added
  • Pull request deleted (https://github.com/Katello/puppet-pulp/pull/24)
Actions #5

Updated by Walden Raines over 10 years ago

  • Status changed from Ready For Testing to Closed
  • % Done changed from 0 to 100
Actions #6

Updated by Eric Helms over 10 years ago

  • Translation missing: en.field_release set to 13
Actions

Also available in: Atom PDF